CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21096 matches found

Vulnrichment•added 2026/05/23 1:0 p.m.•6 views

CVE-2026-9301 omec-project amf NGReset Message memory corruption

A vulnerability was found in omec-project amf up to 2.1.1. This vulnerability affects unknown code of the component NGReset Message Handler. Performing a manipulation results in memory corruption. The attack is possible to be carried out remotely. The exploit has been made public and could be use...

6.5CVSS6AI score0.00052EPSS

Exploits0References6

EUVD•added 2026/05/23 1:0 p.m.•9 views

EUVD-2026-31538

6.5CVSS6.1AI score0.00052EPSS

Exploits0References6

CVE•added 2026/05/23 1:0 p.m.•15 views

CVE-2026-9301

The CVE concerns omec-project amf up to version 2.1.1, affecting the NGReset Message Handler. According to the description in the CVE entry and related records, manipulating the NGReset Message Handler can cause memory corruption, and the issue is exploitable remotely. The exploit is reported as ...

6.5CVSS6.1AI score0.00052EPSS

Exploits0References6

Cvelist•added 2026/05/23 1:0 p.m.•8 views

CVE-2026-9301 omec-project amf NGReset Message memory corruption

6.5CVSS0.00052EPSS

Exploits0References6

NVD•added 2026/05/23 12:17 p.m.•9 views

CVE-2026-9300

A vulnerability has been found in omec-project amf up to 2.1.1. This affects an unknown part of the component NGSetupRequest Handler. Such manipulation leads to memory corruption. The attack can be executed remotely. The exploit has been disclosed to the public and may be used. It is best practic...

6.5CVSS0.00052EPSS

Exploits0References6

Vulnrichment•added 2026/05/23 11:45 a.m.•5 views

CVE-2026-9300 omec-project amf NGSetupRequest memory corruption

6.5CVSS5.9AI score0.00052EPSS

Exploits0References6

NVD•added 2026/05/23 11:16 a.m.•7 views

CVE-2026-9298

A vulnerability was detected in omec-project amf up to 2.1.1. Affected by this vulnerability is an unknown functionality of the component PathSwitchRequest Handler. The manipulation results in memory corruption. The attack may be launched remotely. The exploit is now public and may be used. It is...

6.5CVSS0.00052EPSS

Exploits0References6

NVD•added 2026/05/23 10:16 a.m.•9 views

CVE-2026-9296

A weakness has been identified in Edimax BR-6428NS 1.10. This impacts the function system of the file /goform/formWlanM of the component POST Request Handler. Executing a manipulation of the argument...

6.5CVSS0.01409EPSS

Exploits0References4

ATTACKERKB•added 2026/05/23 10:15 a.m.•7 views

CVE-2026-9297

A security vulnerability has been detected in Edimax BR-6428NS 1.10. Affected is the function formWlbasic of the file /goform/formWlbasic of the component POST Request Handler. The manipulation of the argument repeaterSSID leads to command injection. The attack may be initiated remotely. The...

6.5CVSS6.4AI score0.01409EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/05/23 10:15 a.m.•6 views

CVE-2026-9297 Edimax BR-6428NS POST Request formWlbasic command injection

6.5CVSS0.01409EPSS

Exploits0References4

Cvelist•added 2026/05/23 10:0 a.m.•8 views

CVE-2026-9296 Edimax BR-6428NS POST Request formWlanM system command injection

6.5CVSS0.01409EPSS

Exploits0References4

EUVD•added 2026/05/23 10:0 a.m.•7 views

EUVD-2026-31531

6.5CVSS6.4AI score0.01409EPSS

Exploits0References4

NVD•added 2026/05/23 8:16 a.m.•8 views

CVE-2026-9295

A security flaw has been discovered in Edimax BR-6428NS 1.10. This affects the function formWirelessTbl of the file /goform/formWirelessTbl of the component POST Request Handler. Performing a manipulation of the argument vapurl results in buffer overflow. The attack can be initiated remotely. The...

9CVSS0.00017EPSS

Exploits0References4

Cvelist•added 2026/05/23 7:45 a.m.•8 views

CVE-2026-9295 Edimax BR-6428NS POST Request formWirelessTbl buffer overflow

9CVSS0.00017EPSS

Exploits0References4

Vulnrichment•added 2026/05/23 7:45 a.m.•5 views

CVE-2026-9295 Edimax BR-6428NS POST Request formWirelessTbl buffer overflow

9CVSS7.8AI score0.00017EPSS

Exploits0References4

Vulnrichment•added 2026/05/23 7:30 a.m.•5 views

CVE-2026-9294 Edimax BR-6428NS POST Request formWanTcpipSetup buffer overflow

A vulnerability was identified in Edimax BR-6428NS 1.10. The impacted element is the function formWanTcpipSetup of the file /goform/formWanTcpipSetup of the component POST Request Handler. Such manipulation of the argument pppUserName leads to buffer overflow. It is possible to launch the attack...

9CVSS7.8AI score0.00017EPSS

Exploits0References4

CVE•added 2026/05/23 7:30 a.m.•38 views

CVE-2026-9294

Summary: CVE-2026-9294 affects Edimax BR-6428NS (firmware 1.10). The vulnerability is in the POST Request Handler, inside the function formWanTcpipSetup, where manipulation of the argument pppUserName leads to a buffer overflow. This could be triggered remotely, and an exploit is publicly availab...

9CVSS7.8AI score0.00017EPSS

Exploits0References4

OSV•added 2026/05/23 12:8 a.m.•3 views

GHSA-W4G9-MXGG-J532 Nezha Monitoring: RoleMember-reachable SSRF with full response-body reflection via POST /api/v1/notification

Summary nezha's dashboard supports two user roles: RoleAdmin Role==0 and RoleMember Role==1. The notification routes POST /api/v1/notification and PATCH /api/v1/notification/:id are wired through commonHandler rather than adminHandler — so a RoleMember user can call them. These handlers...

8.5CVSS5.8AI score

Exploits0References3